$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/34cc8adf-189e-4a7a-bdf6-9fcee351baf1.roa File: 34cc8adf-189e-4a7a-bdf6-9fcee351baf1.roa (raw, json) Hash identifier: Y97YIAcZwn75Y3Gp1bdK04PO5GXL6qNz2xNzIWtvseQ= Subject key identifier: 32:25:EA:6A:B5:8C:63:63:C1:73:F2:7F:A9:2B:96:21:9B:55:98:B2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4E3D773775C0812E88260968E053F9E773203B2F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/34cc8adf-189e-4a7a-bdf6-9fcee351baf1.roa Signing time: Mon 31 Mar 2025 15:52:03 +0000 ROA not before: Mon 31 Mar 2025 15:52:03 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 72.44.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:3d:77:37:75:c0:81:2e:88:26:09:68:e0:53:f9:e7:73:20:3b:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 31 15:52:03 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: serialNumber=35a52d9c7751d630722bb5ced2b21e8067fca6878fc11e48810137e6b03f932e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:95:39:68:3f:83:a3:90:76:e7:ac:3b:cc:64: 31:38:ab:43:b3:e2:62:e6:aa:8e:cf:f0:57:38:4b: d8:7e:38:41:ec:31:08:ec:7a:b6:42:26:07:b7:ff: ba:4d:ef:33:d9:e0:80:8b:85:0f:04:6e:e0:e5:04: e2:6b:e7:48:b1:d4:64:6e:82:52:ff:5b:a9:84:b7: 10:39:b4:38:05:f9:7f:9c:8a:a4:ff:c8:72:c4:d7: 41:8e:b1:fb:b2:b9:29:5a:b3:26:e6:0a:8d:af:42: bc:dd:00:76:9a:85:d5:0b:8a:ec:06:54:28:29:af: 77:75:07:58:54:6a:30:df:95:9c:dc:41:4b:ca:8a: 4e:1c:07:e2:26:70:0d:5d:f6:bd:a9:1a:70:f2:f3: 79:06:77:a8:5d:04:68:cc:b6:00:8e:3d:9f:33:9a: 56:ae:b9:95:95:a1:97:8a:3e:85:17:7d:c8:24:cd: 83:32:64:fd:d2:29:24:eb:2d:a1:09:29:9d:44:c0: b5:60:73:76:36:f2:a8:d6:63:cb:fc:4b:43:6d:64: 26:7e:eb:43:a4:9f:7f:04:37:e9:43:5e:22:07:cb: e7:36:8b:16:55:da:fc:28:fc:49:50:61:ea:b1:4d: 2c:d9:09:2e:56:39:90:3e:5d:1a:fa:d3:f3:1e:ba: 91:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:25:EA:6A:B5:8C:63:63:C1:73:F2:7F:A9:2B:96:21:9B:55:98:B2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/34cc8adf-189e-4a7a-bdf6-9fcee351baf1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 72.44.32.0/19 Signature Algorithm: sha256WithRSAEncryption 2c:01:93:a2:c2:74:e9:d4:1b:37:47:66:70:9b:d4:c6:b8:b4: 1f:1d:7b:5f:83:e4:31:43:91:72:e2:ab:fa:b8:17:a0:e6:70: e7:9a:e0:3e:6a:e5:21:6a:fe:b3:ce:e3:e1:8a:6c:a8:a9:2c: e3:e0:2a:f9:5b:ae:17:47:50:3a:58:22:4e:d4:c9:39:60:4a: 17:e9:4d:e5:30:b9:38:68:45:a3:78:a9:c7:08:ec:d4:10:aa: c7:67:5b:d6:21:99:7b:25:54:3e:ff:9c:b1:7d:18:b0:2e:8f: a0:fe:35:c4:59:fb:ef:cb:5f:76:5c:02:79:56:f0:d6:f4:56: 5f:3c:7e:b4:83:20:d1:7a:0a:3a:cb:43:26:52:87:fb:77:31: 65:3e:fd:8f:f6:5b:ed:bc:b9:57:8b:10:95:a1:63:ed:ce:ea: 1b:53:15:9e:f1:7d:e1:9d:0c:3d:e8:41:da:e1:f3:bf:f4:2e: 3d:1d:14:e3:20:4e:41:3c:4f:53:1b:9b:2b:a0:e2:f4:ba:29: 9a:5f:f7:03:10:7d:49:2e:4d:8e:b1:e7:5e:35:89:86:9b:a4: 2f:4a:61:51:67:58:2a:65:9e:d4:36:b0:d0:7e:6d:27:0e:3c: 21:d6:60:8e:d5:a3:cf:6b:96:19:75:bd:d3:58:38:75:cb:e3: 2d:01:5b:b9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTj13N3XAgS6IJglo4FP553MgOy8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzMxMTU1MjAzWhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNWE1MmQ5Yzc3NTFkNjMwNzIyYmI1Y2VkMmIyMWU4MDY3 ZmNhNjg3OGZjMTFlNDg4MTAxMzdlNmIwM2Y5MzJlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxlTloP4OjkHbnrDvMZDE4q0Oz4mLmqo7P8Fc4S9h+OEHs MQjserZCJge3/7pN7zPZ4ICLhQ8EbuDlBOJr50ix1GRuglL/W6mEtxA5tDgF+X+c iqT/yHLE10GOsfuyuSlasybmCo2vQrzdAHaahdULiuwGVCgpr3d1B1hUajDflZzc QUvKik4cB+ImcA1d9r2pGnDy83kGd6hdBGjMtgCOPZ8zmlauuZWVoZeKPoUXfcgk zYMyZP3SKSTrLaEJKZ1EwLVgc3Y28qjWY8v8S0NtZCZ+60Okn38EN+lDXiIHy+c2 ixZV2vwo/ElQYeqxTSzZCS5WOZA+XRr60/MeupHJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMiXqarWMY2PBc/J/qSuWIZtVmLIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM0Y2M4YWRmLTE4OWUtNGE3YS1iZGY2LTlmY2VlMzUxYmFmMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVILCAwDQYJKoZIhvcNAQELBQADggEBACwBk6LCdOnUGzdHZnCb1Ma4tB8d e1+D5DFDkXLiq/q4F6DmcOea4D5q5SFq/rPO4+GKbKipLOPgKvlbrhdHUDpYIk7U yTlgShfpTeUwuThoRaN4qccI7NQQqsdnW9YhmXslVD7/nLF9GLAuj6D+NcRZ++/L X3ZcAnlW8Nb0Vl88frSDINF6CjrLQyZSh/t3MWU+/Y/2W+28uVeLEJWhY+3O6htT FZ7xfeGdDD3oQdrh87/0Lj0dFOMgTkE8T1Mbmyug4vS6KZpf9wMQfUkuTY6x5141 iYabpC9KYVFnWCplntQ2sNB+bScOPCHWYI7Vo89rlhl1vdNYOHXL4y0BW7k= -----END CERTIFICATE-----Generated at Wed Apr 16 16:49:47 2025 by rpki-client